CVE-2019-16546 is a vulnerability in Jenkins Google Compute Engine
Published on November 21, 2019

Jenkins Google Compute Engine Plugin 4.1.1 and earlier does not verify SSH host keys when connecting agents created by the plugin, enabling man-in-the-middle attacks.

NVD

Products Associated with CVE-2019-16546

Want to know whenever a new CVE is published for Jenkins Google Compute Engine? stack.watch will email you.

Jenkins Google Compute Engine

Affected Versions

Jenkins project Jenkins Google Compute Engine Plugin Version 4.1.1 and earlier is affected by CVE-2019-16546

Exploit Probability

EPSS

0.05%

Percentile

13.49%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2019-16546 is a vulnerability in Jenkins Google Compute EnginePublished on November 21, 2019

Products Associated with CVE-2019-16546

Affected Versions

Exploit Probability

CVE-2019-16546 is a vulnerability in Jenkins Google Compute Engine
Published on November 21, 2019